f9e9a9df85aa78faad5f65b52fc427b7d759c7bfc9fe8b9041a428572dfec83e | Triage

Sharing

General

Target

2023-08-22_18126228e3453054ca73db4673bc5c6c_cryptolocker_JC.exe
Size

39KB
Sample

230902-settladf7s
MD5

18126228e3453054ca73db4673bc5c6c
SHA1

68d29cd0998df0e925f0d08476102513c094d017
SHA256

f9e9a9df85aa78faad5f65b52fc427b7d759c7bfc9fe8b9041a428572dfec83e
SHA512

b65220fcac462d10df736549f5551e7f8f89e15ebd20900727aa1730adea0e2672d1769d7696872b3d840b38e31682e199bce620bb6eb5ade6de5d46066fb91f
SSDEEP

384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf6XT+0vJsg5b5U3O2Pra:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yz

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-22_18126228e3453054ca73db4673bc5c6c_cryptolocker_JC.exe
- Size
  
  39KB
- MD5
  
  18126228e3453054ca73db4673bc5c6c
- SHA1
  
  68d29cd0998df0e925f0d08476102513c094d017
- SHA256
  
  f9e9a9df85aa78faad5f65b52fc427b7d759c7bfc9fe8b9041a428572dfec83e
- SHA512
  
  b65220fcac462d10df736549f5551e7f8f89e15ebd20900727aa1730adea0e2672d1769d7696872b3d840b38e31682e199bce620bb6eb5ade6de5d46066fb91f
- SSDEEP
  
  384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf6XT+0vJsg5b5U3O2Pra:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2